DomainTools and Maltego
DomainTools rolled out a new integration with Maltego to create a seamless view of data and provide an easy transition from SIEM alert to human analysis. The integration also preserves the results of analysts findings for future correlation, empowering security teams to map connected malicious infrastructure of domains and IPs on their network.
With the new integration, analysts using Maltego can now investigate indicators of compromise (IOCs) and indicators of attack (IOAs) observed on their network and profile domain-based threats using multiple attributes, such as domain risk scores from proximity, threat profile algorithms, active DNS, and website and SSL data.
The integrated approach should increase the productivity and efficiency of mitigating security incidents, according to the company.